$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/579B33AE886F11F0A02D4009C4F9AE02.roa File: 579B33AE886F11F0A02D4009C4F9AE02.roa (raw, json) Hash identifier: kvqSrwpHPLZJw/K+1ltO2ek3REXXe9HMAbW/Edna9+s= Subject key identifier: 91:62:9F:4A:92:01:66:50:A1:9B:5B:24:D9:54:93:30:02:39:FD:F7 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0552 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/579B33AE886F11F0A02D4009C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:47:19 +0000 ROA not before: Thu 05 Feb 2026 09:23:27 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45753 IP address blocks: 69.72.80.0/21 maxlen: 21 69.72.80.0/24 maxlen: 24 69.72.81.0/24 maxlen: 24 69.72.82.0/24 maxlen: 24 69.72.83.0/24 maxlen: 24 69.72.84.0/24 maxlen: 24 69.72.85.0/24 maxlen: 24 69.72.86.0/24 maxlen: 24 69.72.87.0/24 maxlen: 24 148.66.48.0/20 maxlen: 21 148.66.48.0/21 maxlen: 24 148.66.56.0/22 maxlen: 22 148.66.56.0/23 maxlen: 24 148.66.58.0/24 maxlen: 24 148.66.59.0/24 maxlen: 24 148.66.60.0/24 maxlen: 24 148.66.61.0/24 maxlen: 24 148.66.62.0/24 maxlen: 24 148.66.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Feb 5 09:23:27 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45f87-058b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:5e:bf:4b:13:51:5f:33:53:77:55:e6:6b: 8c:53:36:e7:e5:d9:94:8c:64:fc:40:e9:08:e4:f1: ee:21:ad:36:a7:ad:1b:e2:2f:fc:51:73:75:64:23: cd:0c:38:c7:5d:53:33:04:2f:a6:ed:0b:51:ab:24: 44:63:b2:b6:e6:31:04:f4:99:c7:32:db:df:bf:04: e3:81:d3:b4:fa:f1:9c:ca:ab:6d:1f:81:66:b6:75: 23:73:57:85:a1:17:f5:ca:8f:da:46:76:dd:5d:1f: 6c:e7:38:d3:a6:71:4d:0a:fa:26:05:05:70:d4:0b: 84:f4:c4:93:2b:89:c0:25:00:62:b3:ec:19:dc:2c: b5:c7:b5:cd:96:b6:c6:43:d8:f1:04:f4:73:38:4c: 57:59:e4:a7:af:eb:a8:23:03:36:5f:2f:15:f2:ba: 6e:11:a8:bf:ab:b4:39:03:07:b7:44:22:1c:8a:8e: 63:4b:34:6b:f4:e3:a3:a0:ea:b9:e1:03:74:b5:08: d7:07:37:7f:95:8a:88:46:83:b3:35:14:81:4a:18: 14:a1:c5:15:be:9a:c7:27:69:de:e2:ff:06:de:76: a8:e4:28:b5:4e:7b:e2:eb:44:ea:74:2f:d7:3a:0e: 9a:8f:77:a4:71:42:c5:fa:eb:9c:e0:e7:4d:1c:c1: 05:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:62:9F:4A:92:01:66:50:A1:9B:5B:24:D9:54:93:30:02:39:FD:F7 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/579B33AE886F11F0A02D4009C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 69.72.80.0/21 148.66.48.0/20 Signature Algorithm: sha256WithRSAEncryption 01:0d:ab:f6:ee:65:2a:de:6c:fd:37:06:4b:3c:8e:5f:96:83: 79:1a:2a:ea:a2:69:71:38:64:45:27:ff:0b:17:bc:32:05:15: 21:d2:22:d6:3a:34:0d:b8:04:fc:de:1a:5c:c9:55:ac:60:1c: 72:66:a7:94:e4:e1:21:91:0d:23:bb:36:04:eb:be:a4:8e:43: e3:57:e9:1f:28:05:f3:c4:3c:16:8f:bb:dd:61:52:c3:9c:1a: 0a:aa:af:69:6e:7a:f2:52:3a:c4:ce:2d:87:89:4c:b0:a7:b6: 7f:a0:9a:f5:24:36:64:26:1d:a0:a9:75:9b:ec:35:7b:ab:1d: 21:a8:06:da:21:79:5a:9c:44:9c:cb:43:06:b5:be:d4:b5:56: a0:c7:82:d1:08:2d:9b:66:ab:2c:f1:3a:7b:62:20:9c:f0:0f: 12:f7:d8:53:a5:a3:34:eb:b7:fc:a9:27:8d:d2:19:f6:50:a5: 35:e1:ff:59:bb:00:87:ac:9b:59:ac:c7:0e:09:fb:36:98:6b: 1f:21:28:e2:d4:b7:66:a2:e3:06:15:58:c0:36:6c:1c:b6:10: 07:d4:ad:2f:6f:8c:30:b0:41:87:36:74:81:dd:6c:c1:97:6e: 48:9b:f8:9a:0e:a8:e3:f2:45:ca:da:41:e4:09:fe:31:ff:b2: 9d:df:bb:58 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwMjA1MDkyMzI3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWY4Ny0wNThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLBev0sTUV8zU3dV5muMUzbn5dmUjGT8QOkI5PHuIa02p60b4i/8UXN1ZCPN DDjHXVMzBC+m7QtRqyREY7K25jEE9JnHMtvfvwTjgdO0+vGcyqttH4FmtnUjc1eF oRf1yo/aRnbdXR9s5zjTpnFNCvomBQVw1AuE9MSTK4nAJQBis+wZ3Cy1x7XNlrbG Q9jxBPRzOExXWeSnr+uoIwM2Xy8V8rpuEai/q7Q5Awe3RCIcio5jSzRr9OOjoOq5 4QN0tQjXBzd/lYqIRoOzNRSBShgUocUVvprHJ2ne4v8G3nao5Ci1Tnvi60TqdC/X Og6aj3ekcULF+uuc4OdNHMEF/QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJFin0qS AWZQoZtbJNlUkzACOf33MB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvM0U5QTRBRTAzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvNTc5QjMzQUU4 ODZGMTFGMEEwMkQ0MDA5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDRUhQAwQElEIwMA0GCSqGSIb3DQEBCwUAA4IBAQABDav27mUq3mz9 NwZLPI5floN5GirqomlxOGRFJ/8LF7wyBRUh0iLWOjQNuAT83hpcyVWsYBxyZqeU 5OEhkQ0juzYE676kjkPjV+kfKAXzxDwWj7vdYVLDnBoKqq9pbnryUjrEzi2HiUyw p7Z/oJr1JDZkJh2gqXWb7DV7qx0hqAbaIXlanEScy0MGtb7UtVagx4LRCC2bZqss 8Tp7YiCc8A8S99hTpaM067f8qSeN0hn2UKU14f9ZuwCHrJtZrMcOCfs2mGsfISji 1LdmouMGFVjANmwcthAH1K0vb4wwsEGHNnSB3WzBl25Im/iaDqjj8kXK2kHkCf4x /7Kd37tY -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:15 2026 by rpki-client